Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Deploy SWG Instance Using Custom Image

  1. Last updated
  2. Save as PDF

NOTE:  Before setting up the SWG instance using a custom image, see Import SWG Raw Disk Image section to import a custom image into GCP, or see Copy Custom Image from Skyhigh GCP Project to copy an image from Skyhigh project.

To create an instance from a custom image, follow steps below:

  1. Log in to the Google Cloud console and select the appropriate project.

0.png

  1. Click Compute Engine.

1.png

The Compute Engine page opens. 

2_1.png

  1. Click VM instances > Create instance

2.png

The Create an instance page opens. 

  1. Under the Machine configuration tab, enter the Name, and select the Region and Zone from the respective drop-down lists.

3.png

  1. In the Machine type section, from the Preset drop-down list, select the required machine type. For more information on the recommended VM size, see Physical and Virtual Appliance Requirements.

4.png

NOTE: The Machine type cannot be modified once the instance is deployed. Auto scaling is not supported.

  1. Under the OS and storage tab, click Change
    Under the Custom images tab, configure the following: 
    • Source project for images*: svc-swg-prod-05 (Select the project where SWG image was imported)
    • Image*: swg-12-2-18-54125 (Select the imported image name)
    • Boot disk type*: select the appropriate disk type. 
    • Size (GB)*: 500

NOTE: When running Secure Web Gateway as an instance in a GCP environment, web caching is disabled; you can choose to reduce the required hard-disk space for the VM. Skyhigh does not support changing the disk size once the instance is deployed. 

5.png

6.png

  • Click Select

7.png

  1. Under the Data protection tab, configure the required settings. 

9.png

  1. Under the Networking tab, configure settings such as firewall rules, network, and subnets. Create firewall rules to allow ports 4712 and 9090 for the Secure Web Gateway.

10.png

  1. Under the Security tab, configure the required settings.

13.png

  • For VM access, go to Manage access > +Add Item, enter the SSH public key, and specify an SSH username (for example, admin) in the SSH Key 1* field for the instance.

    14.png
  1. Under the Advanced tab, configure the required settings and enter the startup script if there is any. 

15.png

  1. Click Create

16.png

  1. Wait for the instance to initialize. 

NOTE: Secure Web Gateway on GCP currently supports only explicit proxy mode and no HA or transparent modes, including L2 Transparent.

  1. Navigate to Menu > Compute Engine > VM instances to verify the instance is running. 

17.png

18.png

  1. Connect to the instance using SSH.
    Command format: SSH -i <private_key> <username>@<public_ip>.

image.png

Run bash /usr/local/bin/ssh-banner.sh command to get the SSH banner if it's not displaying. 

 

 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.